Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
File: 3keU2fyrI-wF3d1QSKP8cgQAKio.mft (raw, json)
Hash identifier: OXHxICWiM3aFwTkGWT1w3PHj+a93aSfKc3RPFpwaiD0=
Subject key identifier: C2:EB:E8:CB:00:C8:46:F5:E3:ED:46:39:3A:AB:E8:E5:54:85:4D:6F
Authority key identifier: DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
Certificate issuer: /CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Certificate serial: 018F369B248225BE1898068007B4CE30D33D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
Manifest number: 0A7D
Signing time: Thu 02 May 2024 00:01:28 +0000
Manifest this update: Thu 02 May 2024 00:01:28 +0000
Manifest next update: Fri 03 May 2024 00:01:28 +0000
Files and hashes: 1: 3keU2fyrI-wF3d1QSKP8cgQAKio.crl (hash: zKmGtaSh+9hZU8iTZMmWcTzuc+AscJj1h3p2AWGKjwA=)
2: fmmtb63r5hDVHv8SBhj4ErFL5Cw.roa (hash: iiyax0Nm1VxzGRdZbSpSY+WRXoUEhmVOA/Ips1fD7Uc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:36:9b:24:82:25:be:18:98:06:80:07:b4:ce:30:d3:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Validity
Not Before: May 2 00:01:28 2024 GMT
Not After : May 3 00:01:28 2024 GMT
Subject: CN=c2ebe8cb00c846f5e3ed46393aabe8e554854d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8d:7d:fd:70:d8:8f:1f:28:01:e9:4e:21:34:
d1:ce:ed:75:de:24:0e:05:05:ba:4e:75:a2:fc:59:
39:8a:c3:28:0c:99:31:47:2a:e5:46:be:4d:37:a6:
d2:c8:4f:d7:b8:9d:56:0d:03:d6:50:10:7d:cd:52:
6b:56:b8:ed:47:c7:90:24:1f:9a:db:79:05:0c:49:
24:77:4d:2b:94:70:25:1c:ab:5e:d5:a1:c3:89:36:
00:63:4c:8c:b9:97:88:16:d0:6e:ef:7b:01:b1:b4:
31:c2:86:2e:a9:3a:99:09:1f:32:ab:48:a1:d5:1e:
f7:7e:9d:e1:45:d4:c0:b2:58:57:75:9b:97:7c:18:
43:d4:d8:5e:f9:76:8d:1c:eb:fc:b4:7a:3a:c2:aa:
ac:8c:55:a6:fd:66:6b:7e:c6:2b:79:e5:89:d1:6f:
68:e9:7c:61:cf:98:ca:80:9f:31:10:30:2b:8e:a3:
42:79:41:6a:a9:d5:0a:3c:63:b5:1c:f5:40:a3:c8:
28:78:4e:4d:42:43:58:a2:f5:9c:2b:0d:50:9c:76:
3a:f2:bb:f4:40:a6:7f:e7:26:ec:dd:88:b9:90:a5:
d9:2c:f6:cb:8a:48:15:ac:fa:7a:c0:74:18:b1:5f:
20:d1:e6:8a:f4:db:60:6a:78:df:38:50:61:f7:5a:
14:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:EB:E8:CB:00:C8:46:F5:E3:ED:46:39:3A:AB:E8:E5:54:85:4D:6F
X509v3 Authority Key Identifier:
keyid:DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:68:c8:9a:29:73:c2:15:fa:13:5f:a8:4d:8d:4b:35:c8:d0:
31:3c:a0:dc:c3:8d:90:16:80:92:56:7f:76:6d:59:7c:f2:46:
80:6e:71:c1:b2:6b:af:d6:64:97:33:a3:38:79:04:f5:1f:1b:
fc:ae:a5:84:eb:c5:80:41:74:6c:80:5f:1f:ea:92:4d:6b:90:
64:a8:bc:ed:16:20:e5:93:74:de:9e:18:58:b6:83:e3:41:92:
ad:20:fe:fe:2b:27:0c:d9:e6:93:3e:8b:f2:26:b3:f7:c8:9a:
3c:ba:c2:84:0c:d3:92:73:6b:f5:a3:cf:d4:b6:bb:c3:50:76:
5a:81:e9:1a:99:5c:72:73:42:54:b1:5d:32:2a:c3:36:df:a4:
06:3d:5d:bd:34:24:f7:02:d3:75:51:0d:6c:21:9d:17:4d:2d:
69:29:dd:6b:5b:ff:83:fa:4c:b5:d2:b1:dc:7f:3d:37:fc:6f:
48:05:60:1e:dc:d5:58:9c:0e:84:d7:71:d1:5f:82:f9:b0:46:
49:49:fd:83:0a:d3:be:0b:d5:67:6f:cf:4d:5d:6f:6d:16:57:
b2:8b:39:86:49:3e:b7:c2:6e:ab:0d:27:dd:2c:1d:0a:57:12:
5f:e5:1d:7f:5c:6f:d9:cb:f9:80:96:85:83:10:09:b2:d1:10:
1f:19:8f:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 02:08:29 2024 by rpki-client on console-ams.rpki-client.org